$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/326130623a346530373a6130303a3a2f34302d3438203d3e20323036363034.roa File: 326130623a346530373a6130303a3a2f34302d3438203d3e20323036363034.roa (raw, json) Hash identifier: 8Md/La44Xpn1oMAzaG9XDAjv3TiFqdmAMPIZYNeSYkk= Subject key identifier: 7E:AC:19:61:88:02:28:5E:49:10:6B:5E:79:AE:82:2E:E2:A5:F4:4A Certificate issuer: /CN=CF1D094BB231C3433115D5C53880889E2E701056 Certificate serial: 308811691D1FB6BAC1F885726015DAD87EB18D7D Authority key identifier: CF:1D:09:4B:B2:31:C3:43:31:15:D5:C5:38:80:88:9E:2E:70:10:56 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/CF1D094BB231C3433115D5C53880889E2E701056.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/326130623a346530373a6130303a3a2f34302d3438203d3e20323036363034.roa Signing time: Thu 21 Aug 2025 10:55:50 +0000 ROA not before: Thu 21 Aug 2025 10:50:50 +0000 ROA not after: Thu 20 Aug 2026 10:55:50 +0000 asID: 206604 IP address blocks: 2a0b:4e07:a00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/CF1D094BB231C3433115D5C53880889E2E701056.crl rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/CF1D094BB231C3433115D5C53880889E2E701056.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/CF1D094BB231C3433115D5C53880889E2E701056.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:88:11:69:1d:1f:b6:ba:c1:f8:85:72:60:15:da:d8:7e:b1:8d:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF1D094BB231C3433115D5C53880889E2E701056 Validity Not Before: Aug 21 10:50:50 2025 GMT Not After : Aug 20 10:55:50 2026 GMT Subject: CN=7EAC19618802285E49106B5E79AE822EE2A5F44A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:92:35:0c:77:49:db:0b:82:a9:98:f9:20:8a: a3:60:e5:fd:6a:a6:b6:63:4f:60:84:9c:cb:fe:f1: fa:b6:62:f1:bc:6d:74:f5:fa:34:cb:73:92:ce:13: f3:91:54:b4:b7:44:05:d6:9b:8c:bf:e2:c4:cd:8e: b4:5e:69:27:d9:05:96:da:7b:4b:7d:1c:7c:dc:4b: 5d:54:6c:14:d7:de:f8:f4:9e:e3:f3:8a:8a:76:9f: b3:11:2a:98:9c:1b:78:ab:72:7c:8f:ee:3e:0c:23: af:d7:c9:87:35:c4:f2:e2:86:f4:41:6f:9b:8c:ec: 15:66:0e:02:e7:4f:f7:9e:e6:4f:a6:86:16:07:98: be:69:0e:f8:f4:c1:b9:89:2a:e4:b7:dd:96:01:21: af:b0:6b:d1:8f:49:ba:09:ab:db:ad:86:54:a1:f2: c6:3d:bd:ef:f6:cc:b1:96:94:d7:06:94:11:f5:51: af:19:26:27:2c:c3:6d:fc:8a:ef:e2:c5:5c:b6:7c: 9e:b3:ed:5d:ad:4a:59:97:2a:34:f2:5b:87:09:0b: 74:fc:e5:20:c0:20:4e:93:83:88:fb:a0:f6:32:60: 14:f0:e7:f1:3c:8a:38:38:4c:25:8b:4c:80:91:08: 4d:c5:02:66:d6:92:15:13:26:94:d2:2c:13:79:2b: 57:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:AC:19:61:88:02:28:5E:49:10:6B:5E:79:AE:82:2E:E2:A5:F4:4A X509v3 Authority Key Identifier: keyid:CF:1D:09:4B:B2:31:C3:43:31:15:D5:C5:38:80:88:9E:2E:70:10:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/CF1D094BB231C3433115D5C53880889E2E701056.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/CF1D094BB231C3433115D5C53880889E2E701056.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/326130623a346530373a6130303a3a2f34302d3438203d3e20323036363034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:a00::/40 Signature Algorithm: sha256WithRSAEncryption 69:76:15:d2:09:b0:38:ad:f0:51:62:07:28:c5:1a:e5:10:01: ed:59:3c:6b:43:2d:ed:9e:60:65:2a:4e:c8:c4:9f:66:b0:d1: e0:f8:04:26:e7:3a:06:36:4d:a6:f9:34:23:67:10:b4:37:85: d1:d1:a9:d4:bc:54:a1:2e:0d:6e:b4:08:81:44:40:d9:0a:4d: fc:15:95:ea:93:81:4b:c3:9d:b5:f1:9a:2e:7f:40:a3:3a:53: 4e:1e:93:04:3f:3d:0b:45:b6:f1:07:b9:16:db:58:74:04:ec: ab:1a:7d:35:4b:85:85:48:04:a5:da:c0:8a:6b:be:46:5b:5e: df:e0:16:04:de:06:79:0c:b8:49:96:1f:49:d1:26:c2:c7:5c: d1:39:5d:5c:3b:0e:91:7f:fd:c2:b1:27:10:31:f4:b7:f9:16: 46:bd:85:b7:c9:6d:b8:3e:f7:7a:7d:10:e2:40:59:77:e5:70: 92:8e:76:4a:6f:49:30:ee:00:bd:83:5a:b1:71:f2:b8:b8:c8: ac:c6:0f:c9:1f:5f:eb:fd:ba:0f:85:d7:94:9f:20:8a:bd:36: ea:46:96:41:cd:27:79:ab:5e:4c:b4:03:59:23:aa:8a:4c:66: 06:10:58:d8:f4:2b:da:89:1c:7c:6f:8d:fe:0d:cb:17:a2:2e: 35:8e:15:fb -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUMIgRaR0ftrrB+IVyYBXa2H6xjX0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YxRDA5NEJCMjMxQzM0MzMxMTVENUM1Mzg4MDg4OUUy RTcwMTA1NjAeFw0yNTA4MjExMDUwNTBaFw0yNjA4MjAxMDU1NTBaMDMxMTAvBgNV BAMTKDdFQUMxOTYxODgwMjI4NUU0OTEwNkI1RTc5QUU4MjJFRTJBNUY0NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAkjUMd0nbC4KpmPkgiqNg5f1q prZjT2CEnMv+8fq2YvG8bXT1+jTLc5LOE/ORVLS3RAXWm4y/4sTNjrReaSfZBZba e0t9HHzcS11UbBTX3vj0nuPziop2n7MRKpicG3ircnyP7j4MI6/XyYc1xPLihvRB b5uM7BVmDgLnT/ee5k+mhhYHmL5pDvj0wbmJKuS33ZYBIa+wa9GPSboJq9uthlSh 8sY9ve/2zLGWlNcGlBH1Ua8ZJicsw238iu/ixVy2fJ6z7V2tSlmXKjTyW4cJC3T8 5SDAIE6Tg4j7oPYyYBTw5/E8ijg4TCWLTICRCE3FAmbWkhUTJpTSLBN5K1f3AgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUfqwZYYgCKF5JEGteea6CLuKl9EowHwYDVR0j BBgwFoAUzx0JS7Ixw0MxFdXFOICIni5wEFYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjdlYmRlMDMtMzRkZi00ZjJjLTkyZmEtOGZlMWQwODNk MTVkLzIvQ0YxRDA5NEJCMjMxQzM0MzMxMTVENUM1Mzg4MDg4OUUyRTcwMTA1Ni5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvQ0YxRDA5NEJCMjMxQzM0MzMxMTVENUM1Mzg4MDg4OUUyRTcw MTA1Ni5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjdlYmRlMDMt MzRkZi00ZjJjLTkyZmEtOGZlMWQwODNkMTVkLzIvMzI2MTMwNjIzYTM0NjUzMDM3 M2E2MTMwMzAzYTNhMmYzNDMwMmQzNDM4MjAzZDNlMjAzMjMwMzYzNjMwMzQucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAqC04HCjANBgkqhkiG9w0BAQsFAAOCAQEAaXYV0gmwOK3wUWIHKMUa 5RAB7Vk8a0Mt7Z5gZSpOyMSfZrDR4PgEJuc6BjZNpvk0I2cQtDeF0dGp1LxUoS4N brQIgURA2QpN/BWV6pOBS8OdtfGaLn9AozpTTh6TBD89C0W28Qe5FttYdATsqxp9 NUuFhUgEpdrAimu+Rlte3+AWBN4GeQy4SZYfSdEmwsdc0TldXDsOkX/9wrEnEDH0 t/kWRr2Ft8ltuD73en0Q4kBZd+Vwko52Sm9JMO4AvYNasXHyuLjIrMYPyR9f6/26 D4XXlJ8gir026kaWQc0neateTLQDWSOqikxmBhBY2PQr2okcfG+N/g3LF6IuNY4V +w== -----END CERTIFICATE-----Generated at Sat Aug 23 21:46:39 2025 by rpki-client